exploitDog

CVE-2025-1745

Опубликовано: 27 фев. 2025

Источник: nvd

CVSS3: 4.3

CVSS2: 5

EPSS Низкий

Описание

A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. This vulnerability affects unknown code of the component Logout. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Ссылки

https://gitee.com/LinZhaoguan/pb-cms/issues/IBMM8V
Exploit
Issue Tracking
Third Party Advisory
https://vuldb.com/?ctiid.297832
Permissions Required
VDB Entry
https://vuldb.com/?id.297832
Third Party Advisory
VDB Entry
https://vuldb.com/?submit.502342
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pb-cms_project:pb-cms:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 31%

0.00115

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352

CWE-352

Связанные уязвимости

GHSA-hpv4-mq4h-frcq

CVSS3: 4.3

github

12 месяцев назад

A vulnerability has been found in LinZhaoguan pb-cms 2.0 and classified as problematic. This vulnerability affects unknown code of the component Logout. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

EPSS

Процентиль: 31%

0.00115

Низкий

4.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-352

CWE-352